$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31372e302f32342d3234203d3e20313431363037.roa File: 3230322e3135342e31372e302f32342d3234203d3e20313431363037.roa (raw, json) Hash identifier: ZdrDVhTZzeAMKvH8VvLNOfqWv2uHby+NF47je/9ASIY= Subject key identifier: C4:AB:24:D7:39:9A:A2:63:1C:15:B5:48:63:AF:A1:3A:6B:9A:79:64 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 48EFA587787FF0E55E3012B191D5E4FDC2C6FA7F Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31372e302f32342d3234203d3e20313431363037.roa Signing time: Wed 13 Aug 2025 11:00:01 +0000 ROA not before: Wed 13 Aug 2025 10:55:01 +0000 ROA not after: Wed 12 Aug 2026 11:00:01 +0000 asID: 141607 IP address blocks: 202.154.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 12:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:ef:a5:87:78:7f:f0:e5:5e:30:12:b1:91:d5:e4:fd:c2:c6:fa:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 13 10:55:01 2025 GMT Not After : Aug 12 11:00:01 2026 GMT Subject: CN=C4AB24D7399AA2631C15B54863AFA13A6B9A7964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bd:bb:88:8c:20:39:2d:04:b0:bd:a4:7b:b3: 82:76:c9:44:98:d8:15:a2:d1:95:07:61:08:e2:55: e8:a4:ca:3a:9c:a7:da:1f:3c:71:89:2e:e5:1b:64: 8a:ec:6f:3c:5a:a7:b3:b2:c5:5d:1c:48:5c:08:a8: a0:06:f2:0e:42:68:a4:72:66:73:6e:eb:14:e1:df: 50:3f:2e:cf:67:64:ff:1c:8c:38:bc:9c:8f:cf:10: 5d:a6:ca:e7:8e:89:fb:c3:95:f0:06:90:12:38:fd: 12:89:db:11:45:d1:fe:27:ed:ed:02:8a:94:53:8d: ef:0d:fa:81:7e:52:a6:10:ba:a9:ea:66:9b:e3:8e: 34:25:f3:07:64:7f:99:16:da:d2:b8:2a:64:fb:0b: 6a:43:2c:fa:3d:c0:6c:14:cf:2f:0e:99:d0:89:14: 8d:49:c2:91:ba:65:97:d6:f5:11:cb:e4:2a:b9:f9: 22:5a:5a:9e:d6:4e:73:ba:57:06:87:97:f4:5e:57: 1a:9c:8a:80:b8:a4:2e:9b:d6:e8:7b:b4:fd:93:06: cb:5b:de:ad:7a:42:75:8f:da:91:af:55:93:c7:9f: c0:a1:d1:b2:c6:a7:6d:25:ec:bd:6b:ba:26:1c:b5: cf:1b:9f:ac:72:99:c8:08:02:74:7e:02:7d:9f:f4: 50:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:AB:24:D7:39:9A:A2:63:1C:15:B5:48:63:AF:A1:3A:6B:9A:79:64 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31372e302f32342d3234203d3e20313431363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.17.0/24 Signature Algorithm: sha256WithRSAEncryption b0:ed:d0:ea:c9:60:26:74:3e:fb:64:4b:4e:40:27:19:b9:34: 83:6d:49:c4:d5:84:41:21:aa:bf:ed:3c:24:97:09:1c:c4:4d: cc:e6:3d:9f:cd:bf:90:ab:9b:64:6c:0a:b6:fd:1f:af:ff:5b: 0c:9b:47:90:b9:c5:fd:4a:f0:33:79:a2:e8:e0:6c:63:96:05: d1:34:b6:81:15:9e:c9:67:80:eb:a9:f6:d0:53:26:12:16:f0: c9:4e:2c:12:57:2f:2f:ff:08:8a:d9:df:7a:8c:72:1d:75:98: c7:d4:6b:b5:94:18:1c:d1:75:c9:11:23:21:2a:c5:ab:00:22: 47:dc:a1:b4:7e:25:15:50:24:7d:00:ab:27:c9:e4:44:d9:4f: 82:e2:b3:d3:ae:d0:d5:b3:00:83:0e:ee:c7:86:04:18:50:3f: 40:a5:5e:e5:4f:1a:0d:3c:38:9d:d9:a9:af:54:3d:58:72:f6: bc:ed:6b:d9:9d:3e:29:32:e7:e1:e7:ba:63:92:b5:4e:06:f2: 0a:1d:2c:41:6d:b6:99:d0:36:7e:f2:68:ef:89:7a:96:01:20: c0:a1:2d:7f:a2:6a:09:7e:ec:c4:86:77:93:32:a8:d4:60:3a: 6d:b7:fd:29:95:ce:5b:f1:13:46:3e:12:63:cb:68:d4:a7:04: 06:6f:ea:18 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSO+lh3h/8OVeMBKxkdXk/cLG+n8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNTA4MTMxMDU1MDFaFw0yNjA4MTIxMTAwMDFaMDMxMTAvBgNV BAMTKEM0QUIyNEQ3Mzk5QUEyNjMxQzE1QjU0ODYzQUZBMTNBNkI5QTc5NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGvbuIjCA5LQSwvaR7s4J2yUSY 2BWi0ZUHYQjiVeikyjqcp9ofPHGJLuUbZIrsbzxap7OyxV0cSFwIqKAG8g5CaKRy ZnNu6xTh31A/Ls9nZP8cjDi8nI/PEF2myueOifvDlfAGkBI4/RKJ2xFF0f4n7e0C ipRTje8N+oF+UqYQuqnqZpvjjjQl8wdkf5kW2tK4KmT7C2pDLPo9wGwUzy8OmdCJ FI1JwpG6ZZfW9RHL5Cq5+SJaWp7WTnO6VwaHl/ReVxqcioC4pC6b1uh7tP2TBstb 3q16QnWP2pGvVZPHn8Ch0bLGp20l7L1ruiYctc8bn6xymcgIAnR+An2f9FDLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxKsk1zmaomMcFbVIY6+hOmuaeWQwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypoRMA0GCSqG SIb3DQEBCwUAA4IBAQCw7dDqyWAmdD77ZEtOQCcZuTSDbUnE1YRBIaq/7Twklwkc xE3M5j2fzb+Qq5tkbAq2/R+v/1sMm0eQucX9SvAzeaLo4GxjlgXRNLaBFZ7JZ4Dr qfbQUyYSFvDJTiwSVy8v/wiK2d96jHIddZjH1Gu1lBgc0XXJESMhKsWrACJH3KG0 fiUVUCR9AKsnyeRE2U+C4rPTrtDVswCDDu7HhgQYUD9ApV7lTxoNPDid2amvVD1Y cva87WvZnT4pMufh57pjkrVOBvIKHSxBbbaZ0DZ+8mjviXqWASDAoS1/omoJfuzE hneTMqjUYDptt/0plc5b8RNGPhJjy2jUpwQGb+oY -----END CERTIFICATE-----Generated at Sat Aug 23 14:34:41 2025 by rpki-client